jogai_san@lemmy.world to Selfhosted@lemmy.worldEnglish · 2 days agoSelf-Host Weekly (30 January 2026)selfh.stexternal-linkmessage-square28fedilinkarrow-up182arrow-down19
arrow-up173arrow-down1external-linkSelf-Host Weekly (30 January 2026)selfh.stjogai_san@lemmy.world to Selfhosted@lemmy.worldEnglish · 2 days agomessage-square28fedilink
minus-squarenix98@lemmy.worldlinkfedilinkEnglisharrow-up1·2 days agoThis is where tools like bubblewrap (bwrap) come in. For opencode, I heavily limit what it can see and what is has access to. No access to my ssh keys or aws credentials or anything else.
minus-squareB0rax@feddit.orglinkfedilinkEnglisharrow-up2·1 day agoYes, that is what you do. But not what the majority does… heck it even asks if it can get access to 1password
This is where tools like bubblewrap (bwrap) come in. For opencode, I heavily limit what it can see and what is has access to. No access to my ssh keys or aws credentials or anything else.
Yes, that is what you do. But not what the majority does… heck it even asks if it can get access to 1password